Features

FAQ

Documentation

Book a call

Features

FAQ

Documentation

Book a call

The Gateway for MCP Servers

Secure your MCP infrastructure and push it to production.

Book a call →

Book a call →

Backed by people from

[GATEWAY]

With Golf MCP gateway,
you control your servers

With Golf MCP gateway,
you control your servers

The Golf MCP Gateway is the protocol-aware proxy that sits in front of your servers. It gives teams the single dashboard where they manage its security - a complete set of rules including token validation, RBAC rate limiting, and data flow tracing needed to move MCP infrastructure into production with confidence.

list_comments

create_comment

get_issue

update_comment

delete_comment

fetch_comment

resolve_issue

assign_issue

close_issue

reopen_issue

link_issue

unresolve_issue

Legacy tools are blind to MCP-specific threats. We provide the protocol-aware inspection needed to see and block attacks like prompt injection and token hijacking at the edge.

Legacy tools are blind to MCP-specific threats. We provide the protocol-aware inspection needed to see and block attacks like prompt injection and token hijacking at the edge.

Rate Limiting & RBAC

Protect backend resources from abuse with sophisticated, role-based rate limiting and access controls.

[01]

Centralized Policy & Hardening

Manage CORS and automatically add security headers from a single control plane to harden your infrastructure.

[02]

Token Validation

Enforce strict MCP spec validation and resource indicator checks on every token before it reaches your server.

[03]

Audit Trails

Turn a black box into a glass box with detailed security event logging and complete data flow tracing.

[04]

[05]

Unified Threat Dashboard

Visualize all security events, traffic patterns, and policy enforcement actions in a single, intuitive interface.

High-Performance Core

Deployed as a low-latency proxy. Our Go-based engine ensures security doesn't become a bottleneck.

[06]

use golfMCP to ship production ready MCP servers, directly to your control plane

use golfMCP to ship production ready MCP servers, directly to your control plane

An open-source framework that turns your tools, prompts, and resources into a compliant, production-ready MCP server—no decorators, no config, no boilerplate.

An open-source framework that turns your tools, prompts, and resources into a compliant, production-ready MCP server—no decorators, no config, no boilerplate.

Each file becomes a live agent-facing endpoint—routed, schema-compliant, and observable. You write the logic. golfMCP handles the rest.

Each file becomes a live agent-facing endpoint—routed, schema-compliant, and observable. You write the logic. golfMCP handles the rest.

Each file becomes a live agent-facing endpoint—routed, schema-compliant, and observable. You write the logic. golfMCP handles the rest.

Each file becomes a live agent-facing endpoint - routed, schema-compliant, and observable. You write the logic. golfMCP handles the rest.

[1]

No decorators or schema wiring required

[2]

Built-in authentication with API keys or OAuth

[3]

Tracing and error logging via OpenTelemetry

[4]

Generates plain Python you can self-host or deploy with Golf Cloud

Generates plain Python you can self-host.

[FAQ]

Still not sure?

What is the Golf MCP Gateway?

Golf is a protocol-aware security gateway for the Model Context Protocol (MCP). Instead of exposing each MCP server individually, enterprises route traffic through Golf — a single control point that enforces authentication, authorization, and inspection against MCP-specific threats.

What is the Golf MCP Gateway?

Golf is a protocol-aware security gateway for the Model Context Protocol (MCP). Instead of exposing each MCP server individually, enterprises route traffic through Golf — a single control point that enforces authentication, authorization, and inspection against MCP-specific threats.

What is the Golf MCP Gateway?

Golf is a protocol-aware security gateway for the Model Context Protocol (MCP). Instead of exposing each MCP server individually, enterprises route traffic through Golf — a single control point that enforces authentication, authorization, and inspection against MCP-specific threats.

Why do we need a gateway if we already host MCP servers?

Without a gateway, each MCP server becomes an independent attack surface. That leads to: Inconsistent security controls Fragmented monitoring and audit gaps Greater exposure to prompt injection, token misuse, and command execution attacks Golf solves this by acting as the master MCP server — consolidating security, governance, and observability into one place.

Why do we need a gateway if we already host MCP servers?

Without a gateway, each MCP server becomes an independent attack surface. That leads to: Inconsistent security controls Fragmented monitoring and audit gaps Greater exposure to prompt injection, token misuse, and command execution attacks Golf solves this by acting as the master MCP server — consolidating security, governance, and observability into one place.

Why do we need a gateway if we already host MCP servers?

Without a gateway, each MCP server becomes an independent attack surface. That leads to: Inconsistent security controls Fragmented monitoring and audit gaps Greater exposure to prompt injection, token misuse, and command execution attacks Golf solves this by acting as the master MCP server — consolidating security, governance, and observability into one place.

What MCP-specific threats does Golf protect against?

General security tools don’t understand MCP traffic. Golf is protocol-aware, so it can block attacks like: Prompt injection & tool poisoning – tricking agents into unsafe actions Token hijacking – reusing or manipulating credentials Command injection – exploiting poorly validated inputs Tool spoofing – impersonating or redirecting tool calls Policy bypass – exploiting differences across multiple servers

What MCP-specific threats does Golf protect against?

General security tools don’t understand MCP traffic. Golf is protocol-aware, so it can block attacks like: Prompt injection & tool poisoning – tricking agents into unsafe actions Token hijacking – reusing or manipulating credentials Command injection – exploiting poorly validated inputs Tool spoofing – impersonating or redirecting tool calls Policy bypass – exploiting differences across multiple servers

What MCP-specific threats does Golf protect against?

General security tools don’t understand MCP traffic. Golf is protocol-aware, so it can block attacks like: Prompt injection & tool poisoning – tricking agents into unsafe actions Token hijacking – reusing or manipulating credentials Command injection – exploiting poorly validated inputs Tool spoofing – impersonating or redirecting tool calls Policy bypass – exploiting differences across multiple servers

How does Golf help with compliance and governance?

How does Golf help with compliance and governance? Golf provides the controls CISOs need for MCP in regulated environments: Audit trails – every request/response is logged and traceable Centralized policy enforcement – one place to configure access rules and headers Least privilege – RBAC and fine-grained token validation Visibility – unified dashboard for monitoring traffic patterns and enforcement actions

How does Golf help with compliance and governance?

How does Golf help with compliance and governance? Golf provides the controls CISOs need for MCP in regulated environments: Audit trails – every request/response is logged and traceable Centralized policy enforcement – one place to configure access rules and headers Least privilege – RBAC and fine-grained token validation Visibility – unified dashboard for monitoring traffic patterns and enforcement actions

How does Golf help with compliance and governance?

How does Golf help with compliance and governance? Golf provides the controls CISOs need for MCP in regulated environments: Audit trails – every request/response is logged and traceable Centralized policy enforcement – one place to configure access rules and headers Least privilege – RBAC and fine-grained token validation Visibility – unified dashboard for monitoring traffic patterns and enforcement actions

Is Golf production-ready?

Yes. Golf was designed for enterprises moving MCP from experimentation to production. It provides low-latency proxying, enterprise identity integration (Okta, Auth0), and hardened security policies that scale with the number of servers.

Is Golf production-ready?

Yes. Golf was designed for enterprises moving MCP from experimentation to production. It provides low-latency proxying, enterprise identity integration (Okta, Auth0), and hardened security policies that scale with the number of servers.

Is Golf production-ready?

Yes. Golf was designed for enterprises moving MCP from experimentation to production. It provides low-latency proxying, enterprise identity integration (Okta, Auth0), and hardened security policies that scale with the number of servers.

Can we self-host Golf?

Yes. You can deploy Golf inside your own cloud or data center to keep full control of traffic and data.

Can we self-host Golf?

Yes. You can deploy Golf inside your own cloud or data center to keep full control of traffic and data.

Can we self-host Golf?

Yes. You can deploy Golf inside your own cloud or data center to keep full control of traffic and data.

How does Golf scale as we add more servers?

With Golf, security doesn’t erode as your MCP footprint grows. Whether you operate 2 or 200 servers, Golf gives you: One secure front door Consistent policies across every server Unified monitoring and audit logging Scaling your infrastructure no longer means scaling your attack surface.

How does Golf scale as we add more servers?

With Golf, security doesn’t erode as your MCP footprint grows. Whether you operate 2 or 200 servers, Golf gives you: One secure front door Consistent policies across every server Unified monitoring and audit logging Scaling your infrastructure no longer means scaling your attack surface.

How does Golf scale as we add more servers?

With Golf, security doesn’t erode as your MCP footprint grows. Whether you operate 2 or 200 servers, Golf gives you: One secure front door Consistent policies across every server Unified monitoring and audit logging Scaling your infrastructure no longer means scaling your attack surface.

How do we get started?

The first step is a security readiness session with our team. In that call, we: Review your current MCP environment Identify unprotected gaps and risks Map out how Golf can centralize security and governance From there, you’ll receive a deployment playbook. Most enterprises can begin routing MCP traffic through Golf within days.

How do we get started?

The first step is a security readiness session with our team. In that call, we: Review your current MCP environment Identify unprotected gaps and risks Map out how Golf can centralize security and governance From there, you’ll receive a deployment playbook. Most enterprises can begin routing MCP traffic through Golf within days.

How do we get started?

The first step is a security readiness session with our team. In that call, we: Review your current MCP environment Identify unprotected gaps and risks Map out how Golf can centralize security and governance From there, you’ll receive a deployment playbook. Most enterprises can begin routing MCP traffic through Golf within days.

The agent-native shift has started.

We’re onboarding early teams now - first come, first served. Build the future before it builds around you.

©2025 Golf.dev

LinkedIn

GitHub

YCombinator

made by tonik